CNNVD-202509-1467 Information
Sep 09, 2025
cve
CNNVD ID
CNNVD-202509-1467
Related CVE
- CNNVD Published: 2025-09-09
Description (Chinese)
SiempreCMS是SiempreCMS开源的一个内容管理系统。 SiempreCMS 1.3.6及之前版本存在代码问题漏洞,该漏洞源于对文件/docs/admin/file_upload.php的错误操作导致无限制上传。
Description (English)
SiempreCMS is an open-source content management system for SiempreCMS. SiempreCMS 1.3.6 and previous versions had a code problem loophole, which resulted from an error in the document/docs/admin/file upload.php resulting in unrestricted upload.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
sigstore
Published
2025-09-09
Last Modified
2026-02-24
References
https://github.com/drew-byte/SiempreCMS-File-Upload-Abuse/blob/main/README.md https://vuldb.com/?ctiid.323085 https://vuldb.com/?id.323085 https://vuldb.com/?submit.645540
Share on: